Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
It was discovered that Canonical's Pebble service manager read-file API and the associated pebble pull command, before v1.10.2, allowed unprivileged local users to read files with root-equivalent permissions when Pebble was running as root. Fixes are also available as backports to v1.1.1, v1.4.2, and v1.7.4.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Pebble 安全漏洞
Vulnerability Description
Canonical Pebble是英国Canonical公司的一个轻量级、API 驱动的流程管理器。 Pebble 存在安全漏洞,该漏洞源于允许任何用户访问Pebble服务器的文件拉取API。受影响的产品和版本:canonical/pebble v1.4.1版本,v1.7.3版本, v1.10.1版本。
CVSS Information
N/A
Vulnerability Type
N/A